Vita hack: Davee releases a Vita Native exploit through Webkit (but there might be a catch)
It’s been long awaited, teased a few times recently, and it might finally be here: a native vita hack.
Famous ex-psp hacker Davee released yesterday a proof of concept exploit for the PS Vita, running through the webkit browser. (and yes, you get to try it, hold on!)
Davee came back to life a few weeks ago, releasing a framework to help with the development of exploits on ARM CPUs, through RO programming based hacks. It wasn’t long before he announced this exploit.
Now here’s the catch: in its current form, the exploit only runs on Vita firmware 2.60. Davee stated that it should be easy enough to port to other firmwares (there are a few entry point addresses to update, it seems), but it is extremely likely that it is patched in firmware 3.30. I have no full confirmation of that (although I did test), but my gut feeling tells me Davee would not release “just” a proof of concept if there was a possibility this could still be used on the latest Vita firmware. Yifan Lu stated that this might actually be the same exploit found by other people independently, that had been confirmed to be patched after firmware 3.18.
@frwololo @DaveeFTW will know for sure, but it's my understanding that the same exploit was found independently by other parties and patched
— Yifan (@yifanlu) October 18, 2014
This confirms once again that people waiting for an exploit should stay on lower fiwmares as much as possible (says the guy who just updated to 3.30 yesterday…).
Give it a try
On firmware 3.30, unless I messed up some of my copy/paste, the hack fails at the very first step, which isn’t firmware specific. This indicates that the exploit is indeed patched on 3.30. Feel free to give it a try in particular if you are on firmwares 3.18 or lower. We’ll have more details on the exploit very soon!
Try the exploit on your PS Vita: http://wololo.net/v/260.htm
Update: many people are asking what the exploit should look like when it is “working”. The “full” proof of concept only works on 2.60, but on other firmwares, anything else than an error code is a good sign. For example, people on 3.18 and 3.20 report that the page stays there for a few seconds then reloads: this is a good sign.
Source: Davee’s bitbucket, via YifanLu
So what does this mean?
will we get homebrew soon?
Doesnt work on my Vita with FW 3.18 it only says Please Wait an then it returns to page
Same here, it says “Please Wait” for about 3 seconds and then refreshes the page.
Question: It says “PlayStation Vita 3.18”, could the firmware version number be spoofed?
That means it works…
This means it’s working
Doesn’t work on 1.81
“Error: ReferenceError: Can’t find variable: Uint32Array”
Same here (1.80), but I think were good. Just have to wait some more months/years for the native CFW… Let’s just be patient
What kind of result are we supposed to expect, clicking start on 3.18 basically just seems to reload the page. If the exploit only has been coded for 2.60, I guess that means simply reloading the page = failure?
No. A failure would be error code 1, as in the article screenshot. Anything else is a good sign. The full thing will not work except on 2.60, but as long as you do not get error code… something, then it’s a good sign
What it it supposed to give when it works/doesn’t?
As i have exactly the same output as the screen in this post on 3.30 (EU)
Tested on German PSVita (the original one with OLED Screen PCH1004) on FIrmware 3.15:
It does load and then reload the page. But nice to see a release of his work.
This is good, means there’s a chance it will work on your firmware after a few tweaks
Thanks for your fast answer ! I won’t update and rather wait for it. Willing to test every release when there is one 😉
Tested on 3.20 PS TV, Please Wait for about 3-4 seconds and then it refreshed the page.
This is good
Ladies and gentlemen…Patience is a virtue. Firstly be happy that these guys and girls are busting their you know what to give this to us. Secondly Wololo already stated that it wont load just yet on 3.18. BE PATIENT:-)
what is it supposed to do?
i-am on firmware 3.18 and when i click start it says wait for about 4 seconds and then it reloads the page.
is that a win or a fail?
3G PSVita oled
already answered by wololo in other posts just after i posted this….
its a good sign
Win
3.01, page simply reloads. What is the expected result?
that is good
so wololo,
your advice is DO NOT UPDATE IF YOU ARE ON FW3.18 OR BELOW!?
is that i legitimate thing to say or won’t it matter.
(i wil stay on fw3.18 for real now)
Yes, I think this is what I would recommend at this point
3.01 with oled screen here, it show pleasewait then go back to that page
So glad I didn’t update my vita yet, I’m on 3.18 but I got the exploits working on my ps tv on 3.20 so I was just going to update my vita tonight. So glad you posted this before I did.
Thanks a million times wololo
If it has worked for anyone on 2.60 please post a screenshot tnx
aha i know right they only say the full thing only happens on 2.60 but they dont say what it is . . . maybe its pong or something
Yeah, if I still had a vita on 2.60 I would tell you what it does. for now I have to wait for people with more tools and knowledge than me to wake up and explain what it does 🙂
Aha I look forward to reading your posts in the coming days.
In the future maybe this will help activate our vita tvs =D
OMG are you speculating or you think it will work?? I bought a PSTV a day after the proxy was patched and now Im stuck with an unactivated system 🙁 I want to link my PSN account to DL my games but not update to 3.30!! 🙁
Could this help us PSTV owners on 3.20??
yeap 3.01 reloads
Evenly nicely commented the code so we can tweak it!
That’s Davee for you. Very nicely written code, easy to follow even for someone like me who hasn’t coded in years
3.18 reset. So far so good. Now the waiting game. Keep up the great work Davee
d:^) The beginning entrance step into native vita hacking has finally opened. Good work, Davee and other devs, be sure to check your Paypals sometime 🙂 I might get you folks some awesome giftss!! Woo let’s go PSVita hacks! The day has come..
nice with 3.18 without error code i hope can we see something more in the next weeks to get the snes emulator to play zelda
Don’t expect full homebrews, emulators, etc.. to show up instantly though. This is just a proof of concept, to give you a comparison, it took half a year for VHBL to become “useful” on the PSP, and about one year for it to be considered stable enough to run the majority of homebrews. In this case, it is likely some homebrews, emulators, etc.. might need to be rewritten, at least partially, to fit the exploit’s environment…
anyway i can wait and if you guys need someone to test your exploits im here i think we are here for you
However, this is hopefully the first step in the right direction which will bring much to the Vita Scene.
More than likely, the Vita will provide much for Homebrew Devs. Not to mention the ability to run Emulators. Might even be able to run up to a Dreamcast, NDS, and even CPS3 Emulator.
@wololo : is it correct to assume “native” means we can use full hardware capabilities? or its limited to what web browser got? (I assume web browser didn’t get full access to all CPU core/RAM?)
For now I assume it is limited to what the web browser can access. This could be extremely limited, indeed.
I imgaine it wont take long for them to break retraints put on them this way. Like back in the old days of the PSP and Dark, one exploit simply led to another.
Any hope for 3.30 users
Not at this point. We made it clear a while ago that if you wanted a native hack at this point, you should stay on 3.18
mmmmmmmm………. What could we do now :'(
that mean that the 3.30 ++++ won’t get a native hack 🙁
needlessly, if one day we’ll get a cfw on ps vita, we’ll be able to debug the system, study in the deep ps vita and find new exploit in the system or maybe an exploit in a demo or game as we had seen on psp scene, the possibility are infinite. (someone more expert than meplease correct me if i’m getting wrong)
that’s mean that 3.30 ++ won’t get a native hack 🙁
What functions will we see in this native homebrew, and will we see a new Wagic?
Simply reloads the page on ancient 2.02.
But I guess that is a good sign?
Same thing happened to me running 2.02
Tested on an EU 2.02 Vita and the page reloads.
Guess I’ll just sit tight with my fingers crossed hoping its ported soon 😀
(Though reading some other comments and responses, I won’t get my hopes up for what it will actually be able to do)
Let’s hope that it gets posted to 2.02 there still a few of us who are still on 2.02
Definitely. I never updated further than 2.02 using UNO exploit, because nothing added to the firmware interested me and there had never been a game that I really wanted to buy. The main thing my Vita had to do the little time I used it was run Wagic and Advance Wars.
Let’s be patient guys. All the devs are really working hard for this exploit so that everyone would enjoy the full potential of our vita. Will try this in a bit.
Keep it up guys!
First native home brew should be fw spoofer
*sigh*
If only this had been posted before I updated for Minecraft (I was on 3.0 something)…
Does what it is supposed to do on a Gen 1 model from Australia, firmware: 3.12.
Looking good !
Yes. the exploit in it does not work on 3.30.
We are working on patching to 3.18, there are things such as ASLR to contend with.
awesome, ps vita hacking scene is rising :D….. The worst part is that i’ve discovered i’m understanding what is the meaning of the source code O.O, my Java and C/C++ knowledge is gonna be useful 😀 , maybe it’s time to learn javascrip >.< …
nothing happen for me . im 3.18 tnv.im just wait?
Seriously hope this leads to some amazing Homebrew later on down the road. Wondering what Emulators could possibly be run under the Vita.
Obviously Nintendo up to N64, with a possibility of NDS,
Sega up to Gen and possibly getting Saturn/DC to work.
Would be great to get a recent MAME Emulator, or update the CPS1/2 and MVSPSP along with getting CPS3 Emulation.
Tried on my Vita. Refreshes with the following:
17:41:10 GMT-0700
Mozilla/5.0 (Playstation Vita 3.18) AppleWebKit/536.26 (KHTML, like Gecko) Silk/3.2
Netscape (Playstation Vita)
[Start Button]
What does u2d does in the code – will Davee post some info on the exploit ?
EPIC! The Vita is finally catching up to the 3DS in terms of hacking developments.
Davee is the breath of fresh air the PS Vita scene needed. It’s been asphyxiated by ePSP for far too long!
i think there are lots of other people involved, not just davee
Question – I’m on firmware 1.81 for extra ram etc.
so if its working on 2.60 then surely 1.81 should be good?
When the time comes u can always upgrade but I do not see anything in the code that would prevent it running on 1.81 as well
It gives me an error on 1.81, so it looks like we might be out of luck.
If we could somehow find a download of firmware 2.60 how do we upgrade the firmware? Can we just place it on the sd card & run like old psp?
How much is the error code?
also mine it just repeat the page im 3.18tnv also